RE: Security bug in CGI::Lite::escape_dangerous_chars() function

From: Hard Coder (hcoderat_private)
Date: Wed Feb 12 2003 - 23:55:17 PST

Next message: Fredrik Björk: "Re: Ericsson HM220dp ADSL modem Insecure Web Administration Vulnerability"

Previous message: secureat_private: "[CLA-2003:568] Conectiva Linux Security Announcement - mozilla"
Maybe in reply to: Ronald F. Guilmette: "Security bug in CGI::Lite::escape_dangerous_chars() function"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Hello Ronald and all others

You might be correct with the issue of
escape_dangerous_chars but instead of the technic you
showed

>>open (SM, "|/usr/sbin/sendmail -f rfg $recipient");

I would use

open(SM, "|/usr/sbin/sendmail -oi -t") || die
"sendmail";
...
print SM "To: $recipient\n";

I think an attacker may cause less harm with this
approach even if escape_dangerous_chars is buggy.

HC

__________________________________________________
Do you Yahoo!?
Yahoo! Shopping - Send Flowers for Valentine's Day
http://shopping.yahoo.com

Next message: Fredrik Björk: "Re: Ericsson HM220dp ADSL modem Insecure Web Administration Vulnerability"
Previous message: secureat_private: "[CLA-2003:568] Conectiva Linux Security Announcement - mozilla"
Maybe in reply to: Ronald F. Guilmette: "Security bug in CGI::Lite::escape_dangerous_chars() function"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Thu Feb 13 2003 - 13:19:14 PST